$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa File: 234e46a7-d4c0-4498-863f-fe0ed912a21e.roa (raw, json) Hash identifier: EeqHWl5NtYfch5ZDSbd0zVAaBUtgJcK7uv5wJTeuGDg= Subject key identifier: F5:F4:63:C2:D4:8A:94:A0:BB:9F:A4:A3:2A:17:12:78:CC:B5:77:44 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56F4E5D3D5800AA2391B1F9F804FACD56A53F27D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa Signing time: Sat 13 Apr 2024 00:00:00 +0000 ROA not before: Sat 13 Apr 2024 00:00:00 +0000 ROA not after: Sat 18 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 40.235.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f4:e5:d3:d5:80:0a:a2:39:1b:1f:9f:80:4f:ac:d5:6a:53:f2:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 13 00:00:00 2024 GMT Not After : May 18 23:59:59 2024 GMT Subject: serialNumber=63e68e3490ac75396dd95cd6c7419062e64d969dd65a23a01cbe08d75cc75059, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6b:46:2a:72:52:c6:37:58:58:a1:3e:74:3c: 0d:54:d2:5a:79:d7:9b:e0:06:58:ff:99:39:ae:c8: dd:00:11:8a:10:40:3c:fc:6f:ec:d3:5f:d4:36:66: 1f:8a:61:9a:bc:6a:65:f8:04:16:ae:10:9b:4f:74: d1:73:fc:8c:55:53:64:63:87:c9:c9:99:3b:b3:35: a4:6e:58:9c:0c:24:ec:f3:9f:fc:84:b8:4d:ad:de: ba:60:a9:48:ec:b6:82:98:30:15:bf:98:a8:df:a2: 25:cb:d5:2e:d2:0c:60:08:8b:d0:73:55:a0:a2:6e: 40:60:7e:e7:4e:4e:1a:9e:db:b7:f2:10:cb:c9:0a: f3:20:96:24:dd:fa:a4:f8:f6:cf:f7:50:d1:5e:d5: 07:8f:9f:d2:53:df:46:ba:88:02:96:bc:7e:f8:4a: e9:cb:c3:cc:c7:60:96:1b:5f:43:45:68:b5:30:a7: b1:44:8f:27:b6:55:1e:7a:eb:94:bc:fc:8f:26:af: 31:8f:2e:9f:b5:26:7d:6c:2c:49:5b:ff:9d:48:f3: 07:93:26:81:d7:88:dc:25:77:d1:d9:ef:4c:79:b1: c7:ad:a4:32:5f:c1:e3:71:ae:db:de:c9:30:76:e4: 9e:e7:e9:5b:0f:bc:c4:e0:c1:84:d6:32:4a:c3:8a: 7e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F4:63:C2:D4:8A:94:A0:BB:9F:A4:A3:2A:17:12:78:CC:B5:77:44 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.235.0.0/18 Signature Algorithm: sha256WithRSAEncryption 8b:bc:86:09:23:42:a5:26:8e:91:80:6f:33:71:94:be:9b:dc: 6b:0e:f2:ae:85:e4:f8:16:55:d5:18:5d:d6:87:09:51:53:2d: 35:a9:59:a8:bc:eb:3c:ea:0a:95:6f:41:e1:3a:40:60:40:fa: a0:04:b5:fb:d5:22:a9:8e:9f:0d:28:30:9e:3b:8b:b5:de:5c: 51:31:a5:c3:8b:a6:68:42:9d:a7:d5:b2:4a:7f:6c:7e:76:8f: 1f:35:67:11:98:0f:40:24:2c:1c:30:ae:d6:5f:01:ca:92:c5: fb:c5:95:09:1b:33:66:f6:85:29:b8:56:c9:aa:91:8f:73:5f: f5:c5:71:77:dd:d7:8c:d4:33:6c:5e:9e:6d:1a:7b:23:d1:ab: 27:fd:55:c5:58:0a:2f:a6:dd:fc:92:96:cd:d4:0f:4e:8d:be: bb:27:ec:6b:b3:36:57:27:a9:a4:8d:60:0a:00:75:9c:2b:0d: 7c:25:9b:02:6f:90:b1:0b:d1:08:c4:94:33:14:04:20:01:0a: 0c:24:38:b2:70:34:7c:08:7f:9a:d4:1b:18:6a:4e:be:47:4d: 85:19:b7:00:88:58:4f:97:c1:ff:2c:ea:04:ea:3d:fd:98:3a: 5b:d6:9a:2f:93:bf:8a:2f:f7:db:80:71:69:5c:18:a0:41:b9: f1:51:19:71 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVvTl09WACqI5Gx+fgE+s1WpT8n0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEzMDAwMDAwWhcNMjQwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2M2U2OGUzNDkwYWM3NTM5NmRkOTVjZDZjNzQxOTA2MmU2 NGQ5NjlkZDY1YTIzYTAxY2JlMDhkNzVjYzc1MDU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCda0YqclLGN1hYoT50PA1U0lp515vgBlj/mTmuyN0AEYoQ QDz8b+zTX9Q2Zh+KYZq8amX4BBauEJtPdNFz/IxVU2Rjh8nJmTuzNaRuWJwMJOzz n/yEuE2t3rpgqUjstoKYMBW/mKjfoiXL1S7SDGAIi9BzVaCibkBgfudOThqe27fy EMvJCvMgliTd+qT49s/3UNFe1QePn9JT30a6iAKWvH74SunLw8zHYJYbX0NFaLUw p7FEjye2VR5665S8/I8mrzGPLp+1Jn1sLElb/51I8weTJoHXiNwld9HZ70x5scet pDJfweNxrtveyTB25J7n6VsPvMTgwYTWMkrDin4nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9fRjwtSKlKC7n6SjKhcSeMy1d0QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzNGU0NmE3LWQ0YzAtNDQ5OC04NjNmLWZlMGVkOTEyYTIxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYo6wAwDQYJKoZIhvcNAQELBQADggEBAIu8hgkjQqUmjpGAbzNxlL6b3GsO 8q6F5PgWVdUYXdaHCVFTLTWpWai86zzqCpVvQeE6QGBA+qAEtfvVIqmOnw0oMJ47 i7XeXFExpcOLpmhCnafVskp/bH52jx81ZxGYD0AkLBwwrtZfAcqSxfvFlQkbM2b2 hSm4VsmqkY9zX/XFcXfd14zUM2xenm0aeyPRqyf9VcVYCi+m3fySls3UD06Nvrsn 7GuzNlcnqaSNYAoAdZwrDXwlmwJvkLEL0QjElDMUBCABCgwkOLJwNHwIf5rUGxhq Tr5HTYUZtwCIWE+Xwf8s6gTqPf2YOlvWmi+Tv4ov99uAcWlcGKBBufFRGXE= -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:15 2024 by rpki-client on console-fra.rpki-client.org